BestHub
Sign in
AI Waka
AI Waka
Apr 27, 2026 · Information Security

Building Intelligent Security Agents with Claude Skills: A Complete AI Cybersecurity Guide

The article explains how Anthropic’s Claude Skills framework enables AI agents to execute expert-level cybersecurity tasks by organizing 734+ MITRE ATT&CK‑mapped skills, detailing their structure, progressive loading, real‑world workflows, deployment steps, customization, and the operational benefits for SOCs, detection engineers, and incident responders.

AI securityAgent SkillsClaude
0 likes · 17 min read
Building Intelligent Security Agents with Claude Skills: A Complete AI Cybersecurity Guide
Black & White Path
Black & White Path
Apr 17, 2026 · Information Security

Threat Alert: Cloud‑Native Cybercrime Group TeamPCP Targets Docker, Kubernetes, and Redis

TeamPCP, a newly identified cloud‑native threat group, has compromised at least 60,000 servers worldwide by exploiting exposed Docker APIs, Kubernetes clusters, Redis instances, and the React2Shell vulnerability, employing automated tools such as proxy.sh, kube.py, and react.py, with detailed MITRE ATT&CK mapping and concrete defense recommendations.

DockerKubernetesMITRE ATT&CK
0 likes · 16 min read
Threat Alert: Cloud‑Native Cybercrime Group TeamPCP Targets Docker, Kubernetes, and Redis
Black & White Path
Black & White Path
Apr 11, 2026 · Information Security

Inside the Exposed TheGentlemen Ransomware Toolkit on Proton66

In March 2026 Hunt.io researchers uncovered an open directory on the Russian bullet‑proof host Proton66 that contains the full TheGentlemen ransomware toolkit, complete with Mimikatz credential logs, ngrok tokens, and 21 MITRE ATT&CK techniques, providing a detailed view of the attackers' reconnaissance, privilege‑escalation, defense‑evasion, credential‑access, persistence, and encryption‑preparation stages.

MITRE ATT&CKMimikatzProton66
0 likes · 22 min read
Inside the Exposed TheGentlemen Ransomware Toolkit on Proton66
Black & White Path
Black & White Path
Mar 23, 2026 · Information Security

When Identity Protection Fails: Aura Breaches 900K Records via Vishing Attack

Aura, a provider of identity‑theft protection services, disclosed that a phone‑phishing (vishing) attack in March 2026 exposed roughly 900,000 customer names and email addresses, prompting analysis of the attack vector, MITRE ATT&CK mapping, and lessons on supply‑chain risk and defense‑in‑depth.

AURAInformation SecurityMITRE ATT&CK
0 likes · 7 min read
When Identity Protection Fails: Aura Breaches 900K Records via Vishing Attack